CISA - Protection of Information Assets - Section 5.1

Assess identity and access management controls protecting information assets.

Describe identity and access management principles including authentication methods, authorisation models and the role of access controls in limiting user rights to the minimum required. Assess whether implemented controls enforce least privilege, segregation of duties and timely de-provisioning of accounts.

Examworthy is not affiliated with or endorsed by ISACA. Original, blueprint-aligned practice material only.